nerdexam
CompTIA

CNX-001 · Question #6

An architect needs to deploy a new payroll application on a cloud host. End users' access to the application will be based on the end users' role. In addition, the host must be deployed on the 192.168

The correct answer is A. Least privilege C. Microsegmentation. Least privilege: Granting users access to the payroll app strictly according to their roles enforces the principle of least privilege. Microsegmentation: Placing the host in its own 192.168.77.32/30 subnet isolates it from other workloads, achieving microsegmentation.

Cloud Network Security

Question

An architect needs to deploy a new payroll application on a cloud host. End users' access to the application will be based on the end users' role. In addition, the host must be deployed on the 192.168.77.32/30 subnet. Which of the following Zero Trust elements are being implemented in this design? (Choose two.)

Options

  • ALeast privilege
  • BDevice trust
  • CMicrosegmentation
  • DCASB
  • EWAF
  • FMFA

How the community answered

(23 responses)
  • A
    83% (19)
  • B
    9% (2)
  • E
    4% (1)
  • F
    4% (1)

Explanation

Least privilege: Granting users access to the payroll app strictly according to their roles enforces the principle of least privilege. Microsegmentation: Placing the host in its own 192.168.77.32/30 subnet isolates it from other workloads, achieving microsegmentation.

Topics

#Zero Trust#Least Privilege#Microsegmentation#Role-Based Access Control (RBAC)

Community Discussion

No community discussion yet for this question.

Full CNX-001 Practice